Vulnetix
Try Vulnetix Request Demo
CVE-2017-12153 PUBLISHED

A security flaw was discovered in the nl80211_set_rekey_data() function in net/wireless/nl80211.c in the Linux kernel through 4.13.3. This function does not check whether the required attributes are present in a Netlink request. This request can be issued by a user with the CAP_NET_ADMIN capability and may result in a NULL pointer dereference and system crash.

EPSS 0.02% · 3.8th percentile

Risk Scores

EPSS Score
0.02%
3.8th percentile

Affected Products

VendorProductVersions
Ubuntu:16.04:LTSlinux-aws4.4.0-1004.13, 4.4.0-1001.10, 0
Ubuntu:24.04:LTSlinux-raspi-realtime6.8.0-2019.20, 0
Ubuntu:22.04:LTSlinux-realtime0, 5.15.0-1032.35
Ubuntu:16.04:LTSlinux4.4.0-8.23, 4.4.0-7.22, 4.4.0-6.21
Ubuntu:16.04:LTSlinux-raspi24.2.0-1013.19, 4.4.0-1075.83, 4.4.0-1074.82
Ubuntu:14.04:LTSlinux-lts-xenial4.4.0-45.66~14.04.1, 4.4.0-97.120~14.04.1, 4.4.0-96.119~14.04.1
Ubuntu:20.04:LTSlinux-gke5.4.0-1086.93, 0, 5.4.0-1033.35
Ubuntu:16.04:LTSlinux-gcp4.10.0-1006.6, 4.10.0-1004.4, 0
Ubuntu:16.04:LTSlinux-kvm4.4.0-1008.13, 4.4.0-1004.9, 0
Ubuntu:20.04:LTSlinux-azure-fde5.4.0-1072.75+cvm1.1, 5.4.0-1073.76+cvm1.1, 5.4.0-1074.77+cvm1.1
Ubuntu:20.04:LTSlinux-riscv5.4.0-26.30, 5.4.0-24.28, 0
Ubuntu:16.04:LTSlinux-snapdragon4.4.0-1032.36, 4.4.0-1077.82, 4.4.0-1076.81
Ubuntu:20.04:LTSlinux-raspi25.3.0-1017.19, 5.3.0-1015.17, 5.3.0-1014.16
Ubuntu:16.04:LTSlinux-azure4.11.0-1014.14, 4.11.0-1013.13, 4.11.0-1011.11
Ubuntu:16.04:LTSlinux-gke4.4.0-1024.24, 4.4.0-1027.27, 4.4.0-1028.28
Ubuntu:22.04:LTSlinux-riscv5.15.0-1012.13, 5.15.0-1008.8, 5.15.0-1007.7
Ubuntu:22.04:LTSlinux-intel-iot-realtime5.15.0-1073.75, 0
Ubuntu:16.04:LTSlinux-hwe4.8.0-56.61~16.04.1, 4.13.0-31.34~16.04.1, 4.13.0-26.29~16.04.2
Ubuntu:14.04:LTSlinux3.13.0-19.40, 3.13.0-20.42, 3.13.0-21.43

Timeline

References

Open in Interactive Console →